Pete Lindstrom

Vice President of Research, Enterprise / NextGen Security

Pete Lindstrom is Vice-President of security research with IDC's IT Executive Program (IEP). He has extensive and broad expertise with a variety of information security products, but is best known as an authority on cybersecurity economics issues such as strategic security metrics, estimating risk and return, and measuring security programs. He has also focused on applying core risk management principles to new technologies, architectures, and systems, focusing on the use of virtualization, cloud security, and big data. He has developed the "Four Disciplines of Security Management" (a security operations model), and the "5 Immutable Laws of Virtualization Security," which was integrated into guidance from the PCI Council.

Prior to joining IDC in 2014, Pete accumulated 25 years of industry experience as an IT auditor, IT security practitioner, and industry analyst. He is a frequent contributor to business and trade publications and is often quoted in USA Today, WSJ Online, Information Security Magazine, VAR Business, Searchsecurity.com, and CSO Magazine. His columns and articles have appeared in Information Security Magazine, Searchsecurity.com, ISSA Journal, and CSO Online. Additionally, Mr. Lindstrom is a popular speaker at the RSA Security Conference, InfoSec World, ISSA International Conference, and many regional conferences.

Pete served as an officer in the U.S. Marine Corps and received a bachelor's degree in Business Administration (Finance) from the University of Notre Dame.

The CPU chips of nearly two dozen widely used manufacturers are vulnerable to the Spectre and Meltdown attacks, which can be used by a highly sophisticated attacker to expose sensitive information such as passwords or secret keys on PCs, vi...

McAfee announced a definitive agreement to acquire Skyhigh Networks. Skyhigh Networks brings into McAfee a cloud security gateway offering with a robust database of control elements for over 25,000 SaaS applications, providing security capa...

This IDC study presents through the IDC MarketScape model a vendor assessment of providers offering incident response services. The assessment reviews both quantitative and qualitative characteristics that define current market demands and ...